Lucene search
K

110 matches found

CVE
CVE
added 2015/05/27 6:0 p.m.87 views

CVE-2015-4063

Summary (CVE-2015-4063): WordPress plugin NewStatPress (before 0.9.9) contains a cross-site scripting (XSS) flaw in includes/nsp_search.php. The vulnerability allows remote authenticated users to inject arbitrary script/HTML via the where1 parameter on the nsp_search page (to wp-admin/admin.php)....

3.5CVSS5.4AI score0.06188EPSS
Exploits6References4Affected Software1
CVE
CVE
added 2015/05/27 6:0 p.m.92 views

CVE-2015-4062

CVE-2015-4062 affects WordPress plugin NewStatPress 0.9.8. The vulnerability is an SQL injection in includes/nsp_search.php that allows a remote authenticated user to execute arbitrary SQL via the where1 parameter on the nsp_search page (wp-admin/admin.php). The issue is demonstrated in multiple ...

6.5CVSS8.1AI score0.09183EPSS
Exploits6References4Affected Software1
CNVD
CNVD
added 2015/05/26 12:0 a.m.8 views

WordPress NewStatPress plugin cross-site scripting vulnerability

WordPress is a set of blogging platform developed using the PHP language, support for setting up personal blog sites on PHP and MySQL servers.NewStatPress is a plugin for website access statistics management. A cross-site scripting vulnerability exists in WordPress NewStatPress, which allows remo...

3.5CVSS6.1AI score0.06188EPSS
Exploits6References1
Patchstack
Patchstack
added 2015/05/26 12:0 a.m.22 views

WordPress NewStatPress Plugin 0.9.8 - Multiple Vulnerabilities

NewStatPress plugin is prone to multiple vulnerabilities, such as authenticated SQL injection and authenticated XSS. Solution Update the plugin...

6.5CVSS2.6AI score0.09183EPSS
Exploits6References1Affected Software1
CNVD
CNVD
added 2015/05/26 12:0 a.m.8 views

WordPress NewStatPress Plugin SQL Injection Vulnerability

WordPress is a set of blogging platform developed using the PHP language, support for setting up personal blog sites on PHP and MySQL servers.NewStatPress is a plugin for website access statistics management. WordPress NewStatPress suffers from a SQL injection vulnerability that allows remote...

6.5CVSS7.9AI score0.09183EPSS
Exploits6References1
exploitpack
exploitpack
added 2015/05/26 12:0 a.m.74 views

WordPress Plugin NewStatPress 0.9.8 - Multiple Vulnerabilities

WordPress Plugin NewStatPress 0.9.8 - Multiple Vulnerabilities Title: Multiple vulnerabilities in WordPress plugin "NewStatPress" Author: Adrián M. F. - adrimf85atgmaildotcom Date: 2015-05-25 Vendor Homepage: https://wordpress.org/plugins/newstatpress/ Active installs: 20,000+ Vulnerable version:...

6.5CVSS0.3AI score0.09183EPSS
Exploits7
0day.today
0day.today
added 2015/05/26 12:0 a.m.51 views

WordPress NewStatPress 0.9.8 Cross Site Scripting / SQL Injection Vulnerabilities

WordPress NewStatPress plugin version 0.9.8 suffers from cross site scripting and remote SQL injection vulnerabilities. Title: Multiple vulnerabilities in WordPress plugin "NewStatPress" Author: Adrián M. F. - adrimf85atgmaildotcom Date: 2015-05-25 Vendor Homepage:...

6.5CVSS0.1AI score0.09183EPSS
Exploits7
CNVD
CNVD
added 2015/05/26 12:0 a.m.7 views

WordPress Plugin Landing Pages Cross-Site Scripting Vulnerability

WordPress is a set of blogging platform developed using the PHP language, support for setting up personal blog sites on PHP and MySQL servers.NewStatPress is a plugin for website access statistics management. A cross-site scripting vulnerability exists in the WordPress plugin Landing Pages. An...

3.5CVSS6.2AI score0.03947EPSS
Exploits6References1
WPVulnDB
WPVulnDB
added 2015/05/25 12:0 a.m.25 views

NewStatPress 0.9.8 - XSS & SQL Injection

The NewStatPress WordPress plugin was affected by a XSS & SQL Injection security vulnerability...

6.5CVSS1.9AI score0.09183EPSS
Exploits7References2Affected Software1
Packet Storm
Packet Storm
added 2015/05/25 12:0 a.m.45 views

WordPress NewStatPress 0.9.8 Cross Site Scripting / SQL Injection

Title: Multiple vulnerabilities in WordPress plugin "NewStatPress" Author: Adrián M. F. - adrimf85atgmaildotcom Date: 2015-05-25 Vendor Homepage: https://wordpress.org/plugins/newstatpress/ Active installs: 20,000+ Vulnerable version: 0.9.8 Fixed version: 0.9.9 CVE: CVE-2015-4062, CVE-2015-4063...

6.5CVSS0.2AI score0.09183EPSS
Exploits7
Rows per page
Query Builder